[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
About re:claimID
|
From: |
Alessio Vanni |
|
Subject: |
About re:claimID |
|
Date: |
Sat, 05 Dec 2020 21:52:03 +0100 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux) |
Hello,
for a number of reasons I'm looking into ways to authenticate a user
with a custom service (i.e. not something already existing), so I
started checking out re:claimID as it seems to be the solution.
I have two questions about it:
1. is there some other documentation aside from what is on the website
and the C header file? The website only talks about interfacing
re:claimID with the web and that's not what I'm trying to do, so it's
not really helpful; about the header file, it explains what the API does
but I'm not too sure about how to actually use it.
2. if I issue a ticket, which seems to be the way to perform
authentication, is it readable only by the other party or can anyone
find it and read what's inside the ticket? What I mean is: I issue a
ticket for Bob and then send it to him; if Alice intercepts the ticket,
can she read what's inside the ticket? I would assume she wouldn't be
able to, but I'd rather ask first. I'm asking this because I can't think
of any way to notify Bob about my ticket aside from sending the GNS
record label to him, making it essentially "public" assuming there's a
way to spy on Bob either during transmission or by peeking over his
shoulders.
Thank you,
A.V.
- About re:claimID,
Alessio Vanni <=